anmolnar commented on issue #716: Enable secure processing and disallow DTDs in the SAXParserFactory URL: https://github.com/apache/zookeeper/pull/716#issuecomment-452286216 @coheigea Thanks. I added you to the contributor list and assigned the Jira to you. How safe is this change in terms of XML processing? I'm willing to commit it to 3.6 for sure, maybe 3.5 too, but not 3.4 unless it has an exploitable security issue.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services